DNS Flaw – Been around since 2005

You can use the link above to test your ISP’s DNS Server. This test is courtesy of the DNS-OARC group.

In case you have not heard there is a flaw in the way DNS handles the randomness of something called a QID. Dan Kaminsky made it’s existence public earlier this month with a promise to disclose it at the upcoming Black Hat convention in Las Vegas.

The details of the issue have become public already. This issue has existed for many years and was brought to attention in 2005 when it was announced by Ian Green.

I’m not going to go over all the details of the issue but here are a some links to info about it.